A system of electronic identity verification across multiple services is provided and includes a password vault module adapted to enable a user to store a plurality of credentials for respective services of the user's choosing as well as a federated identity module adapted to enable a user to provide a single sign-on credential for a plurality of subscribing services. A common login module is accessible to both the password vault module and the federated identity module. When the user logs into the common login module, the user is authenticated for both services of the user's choosing and subscribing services. The system migrates stored user credentials in the password vault module to the federated identity module when a user-chosen service becomes a subscribing service. An integrated mobile wallet module enables financial transactions between the user and both the user-chosen services and subscribing services.
Legal claims defining the scope of protection, as filed with the USPTO.
1. A computer-based system of electronic identity verification across multiple services, comprising: at least one processor; and at least one storage medium in communication with said processor, said at least one storage medium storing instructions that when executed by a processor causes the processor to perform: receiving, by a password vault software module, a plurality of credential for respective user-chosen services; storing, by the password vault software module, the plurality of credentials for the respective user-chosen service; performing, by a federated identity software module, a single sign-on credential for a plurality of subscribing services; receiving, by a common login software module, logins from a user, wherein the common login software module is accessible to both the password vault software module and the federation identity software module; authenticating, by the common login software module, the user based on the logins; providing, by the common login software module to the user, access to both the user-chosen services and the plurality of subscribing services based on the authentication; migrating stored user credentials in said password vault software module to said federated identity software module when one of the user-chosen service becomes a subscribing service among the plurality of subscribing services.
2. A computer-based system of electronic identity verification across multiple services according to claim 1 , further comprising an integrated mobile wallet software module stored on said at least one storage medium and programmed to enable financial transactions between the user and both the user-chosen services and the plurality of subscribing services.
3. A computer-based system of electronic identity verification across multiple services according to claim 2 , said mobile wallet software module further comprising an embedded token programmed to support authentication to services that require two-factor authentication.
4. A computer-based system of electronic identity verification across multiple services according to claim 1 , wherein the user can select whether to share personal data with a given service or not upon establishing user authentication with the given service.
5. A computer-based system of electronic identity verification across multiple services according to claim 4 , wherein the given service is either one of the user-chosen services or one of the plurality of subscribing services.
6. A computer-based of electronic identity verification across multiple services according to claim 1 , wherein a device to access said system is registered with said system for additional security.
7. A computer-based method of electronic identity verification across multiple services, comprising the steps of: providing at least one processor: providing at least one storage medium in communication with the at least one processor: receiving, by a password vault software module, a plurality of credential for respective user-chosen services; storing, by the password vault software module, the plurality of credentials for the respective user-chosen service; performing, by a federated identity software module, a single sign-on credential for a plurality of subscribing services; receiving, by a common login software module, logins from a user, wherein the common login software module is accessible to both the password vault software module and the federation identity software module; authenticating, by the common login software module, the user based on the logins; providing, by the common login software module to the user, access to both the user-chosen services and the plurality of subscribing services based on the authentication; migrating stored user credentials in the password vault software module to the federated identity software module when one of the user-chosen services becomes a subscribing service among the plurality of subscribing services.
8. A computer-based method of electronic identity verification across multiple services according to claim 7 , further comprising the step of providing an integrated mobile wallet software module stored on said at least one storage medium and programmed to enable financial transactions between the user and both the user-chosen services and the plurality of subscribing services, wherein when the user logs into the common login software module, the user is authenticated for the mobile wallet software module.
9. A computer-based method of electronic identity verification across multiple services according to claim 8 , said mobile wallet software module providing step further comprising the step of providing an embedded token programmed to support authentication to services that require two-factor authentication.
10. A computer-based method of electronic identity verification across multiple services according to claim 7 , further comprising the step of enabling the user to select whether to share personal data with a given service or not upon establishing user authentication with the given service.
11. A computer-based method of electronic identity verification across multiple services according to claim 10 , wherein the given service is either a user-chosen service or one of the plurality of subscribing services.
12. A computer-based method of electronic identity verification across multiple services according to claim 7 , further comprising the step of registering a device used to access said system with said system.
13. A computer-based method of electronic identity verification across multiple services according to claim 7 , wherein the migrating stored user credentials further comprising the steps of: querying the user to determine if the user wants to federate user credentials for a one of the plurality of subscribing services that is also one of the user-chosen services; and based on a user's response during said querying step, extracting relevant credentials from the user's password vault software module and incorporating the relevant credentials into the federated identity software module.
14. A computer-based method of electronic identity verification across multiple services according to claim 13 , further comprising the step of purging the relevant credentials from the password vault software module that appear in the federated identity software module after said incorporating step.
15. A non-transitory computer readable medium for electronic identity verification across multiple services wherein the medium comprises computer-readable instructions when executed by a processor causes the processor to carry out the steps of: receiving, by a password vault software module, a plurality of credential for respective user-chosen services; storing, by the password vault software module, the plurality of credentials for the respective user-chosen service; performing, by a federated identity software module, a single sign-on credential for a plurality of subscribing services; receiving, by a common login software module, logins from a user, wherein the common login software module is accessible to both the password vault software module and the federation identity software module; authenticating, by the common login software module, the user based on the logins; providing, by the common login software module to the user, access to both the user-chosen services and the plurality of subscribing services based on the authentication; and migrating stored user credentials in the password vault software module to the federated identity software module when one of the user-chosen services becomes a subscribing service among the plurality of subscribing services.
16. A non-transitory computer readable medium for electronic identity verification across multiple services wherein the medium comprises computer-readable instructions when executed by a processor causes the processor to carry out the steps according to claim 15 , further comprising computer-readable instructions when executed by the processor causes the processor to carry out the further step of providing an integrated mobile wallet software module stored on said at least one storage medium and programmed to enable financial transactions between the user and both the user-chosen services and the plurality of subscribing services; providing access to the mobile wallet software module, the user-chosen services, and the plurality of subscribing service based on the authentication.
17. A non-transitory computer readable medium for electronic identity verification across multiple services wherein the medium comprises computer-readable instructions when executed by a processor causes the processor to carry out the steps according to claim 16 , further comprising computer-readable instructions when executed by the processor causes the processor to carry out the further step of providing an embedded token programmed to support authentication to services that require two-factor authentication.
18. A non-transitory computer readable medium for electronic identity verification across multiple services wherein the medium comprises computer-readable instructions when executed by a processor causes the processor to carry out the steps according to claim 15 , further comprising computer-readable instructions when executed by the processor causes the processor to carry out the further step of enabling the user to select whether to share personal data with a given service or not upon establishing user authentication with the given service.
19. A non-transitory computer readable medium for electronic identity verification across multiple services wherein the medium comprises computer-readable instructions when executed by a processor causes the processor to carry out the steps according to claim 18 , wherein the given service is either a user-chosen service or a one of the plurality of subscribing services.
20. A non-transitory computer readable medium for electronic identity verification across multiple services wherein the medium comprises computer-readable instructions when executed by a processor causes the processor to carry out the steps according to claim 15 , further comprising computer-readable instructions when executed by the processor causes the processor to carry out the further step of registering a device used to access said system with said system.
21. A non-transitory computer readable medium for electronic identity verification across multiple services wherein the medium comprises computer-readable instructions when executed by a processor causes the processor to carry out the steps according to claim 15 , further comprising computer-readable instructions when executed by the processor causes the processor to carry out the further steps of: querying the user to determine if the user wants to federate user credentials for one of the plurality of subscribing services that is also one of the user-chosen services; and based on a user's response during said querying step, extracting the relevant credentials from the user's password vault software module and incorporating the relevant credentials into the federated identity software module.
22. A non-transitory computer readable medium for electronic identity verification across multiple services wherein the medium comprises computer-readable instructions when executed by a processor causes the processor to carry out the steps according to claim 15 , further comprising computer-readable instructions when executed by the processor causes the processor to carry out the further step of purging the relevant credentials from the password vault module that appear in the federated identity module after the incorporating step.
Cooperative Patent Classification codes for this invention. Click any code to explore related patents in that topic.
December 15, 2015
October 29, 2019
Browse 5M+ US patents with plain-English claim translations and AI-generated analysis.